From 8a06f991edf359f9ffeb53cc57173023c44d9644 Mon Sep 17 00:00:00 2001
From: "kiko%async.com.br" <>
Date: Sat, 27 Mar 2004 09:28:29 +0000
Subject: Fix for bug 226764: Move InvalidateLogins into Bugzilla::Auth::CGI.
 Consolidates the logout code into Bugzilla::Auth::CGI, and provides simple
 front-end wrappers in Bugzilla.pm for use in the CGIs we have. r=bbaetz,
 joel; a=justdave.

Adds a set of constants to the logout() API which allow specifying "how
much" we should log out -- all sessions, the current session, or all
sessions but the current one.

Fixes callsites to use this new API; cleans and documents things a
bit while we're at it. Part I in the great COOKIE apocalypse.
---
 userprefs.cgi | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'userprefs.cgi')

diff --git a/userprefs.cgi b/userprefs.cgi
index 5466c80cc..15afdb21c 100755
--- a/userprefs.cgi
+++ b/userprefs.cgi
@@ -26,6 +26,7 @@ use strict;
 use lib qw(.);
 
 use Bugzilla;
+use Bugzilla::Constants;
 
 require "CGI.pl";
 
@@ -108,8 +109,9 @@ sub SaveAccount {
             SendSQL("UPDATE profiles 
                      SET    cryptpassword = $cryptedpassword 
                      WHERE  userid = $userid");
+
             # Invalidate all logins except for the current one
-            InvalidateLogins($userid, $cgi->cookie("Bugzilla_logincookie"));
+            Bugzilla->logout(LOGOUT_KEEP_CURRENT);
         }
     }
 
-- 
cgit v1.2.3-24-g4f1b